Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 8, 2026, 4:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
239831 6.5 警告 kwsphp
jeuxflash		 - KwsPHP 用の jeuxflash モジュールの play.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-4922 2012-09-25 16:59 2007-09-17 Show GitHub Exploit DB Packet Storm
239832 7.5 危険 php webquest - PHP Webquest の soporte_derecha_w.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-4920 2012-09-25 16:59 2007-09-17 Show GitHub Exploit DB Packet Storm
239833 7.5 危険 jblog - JBlog における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-4919 2012-09-25 16:59 2007-09-17 Show GitHub Exploit DB Packet Storm
239834 6 警告 Invision Power Services, Inc - IP.Board のサブスクリプションマネージャにおけるメンバ ID を変更される脆弱性 CWE-20
不適切な入力確認 		CVE-2007-4914 2012-09-25 16:59 2007-09-12 Show GitHub Exploit DB Packet Storm
239835 7.5 危険 Invision Power Services, Inc - IP.Board の ips_kernel/class_upload.php におけるスクリプトファイルをアップロードされる脆弱性 CWE-94
コード・インジェクション 		CVE-2007-4913 2012-09-25 16:59 2007-09-12 Show GitHub Exploit DB Packet Storm
239836 4.3 警告 Invision Power Services, Inc - IP.Board の ips_kernel/class_ajax.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-4912 2012-09-25 16:59 2007-09-12 Show GitHub Exploit DB Packet Storm
239837 10 危険 netinvoicing - netInvoicing における脆弱性 CWE-noinfo
情報不足 		CVE-2007-4910 2012-09-25 16:59 2007-09-17 Show GitHub Exploit DB Packet Storm
239838 6.8 警告 nuclearbb - NuclearBB の tasks/send_queued_emails.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-4906 2012-09-25 16:59 2007-09-17 Show GitHub Exploit DB Packet Storm
239839 6.8 警告 マイクロソフト - Microsoft Visual Studio 6.0 の PDWizard.ocx における任意のプログラムを実行される脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2007-4891 2012-09-25 16:59 2007-09-13 Show GitHub Exploit DB Packet Storm
239840 5.8 警告 マイクロソフト - Microsoft Visual Studio 6.0 の VBTOVSI.DLL におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-4890 2012-09-25 16:59 2007-09-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 8, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
267901 8.8 HIGH
Network 		phpmyadmin phpmyadmin An issue was discovered in phpMyAdmin. In the user interface preference feature, a user can execute an SQL injection attack against the account of the control user. All 4.6.x versions (prior to 4.6.4… CWE-89
SQL Injection 		CVE-2016-6619 2024-11-21 11:56 2016-12-11 Show GitHub Exploit DB Packet Storm
267902 6.5 MEDIUM
Network 		phpmyadmin phpmyadmin An issue was discovered in phpMyAdmin. The transformation feature allows a user to trigger a denial-of-service (DoS) attack against the server. All 4.6.x versions (prior to 4.6.4), 4.4.x versions (pr… NVD-CWE-noinfo
CVE-2016-6618 2024-11-21 11:56 2016-12-11 Show GitHub Exploit DB Packet Storm
267903 8.1 HIGH
Network 		phpmyadmin phpmyadmin An issue was discovered in phpMyAdmin. A specially crafted database and/or table name can be used to trigger an SQL injection attack through the export functionality. All 4.6.x versions (prior to 4.6… CWE-89
SQL Injection 		CVE-2016-6617 2024-11-21 11:56 2016-12-11 Show GitHub Exploit DB Packet Storm
267904 7.5 HIGH
Network 		phpmyadmin phpmyadmin An issue was discovered in phpMyAdmin. In the "User group" and "Designer" features, a user can execute an SQL injection attack against the account of the control user. All 4.6.x versions (prior to 4.… CWE-89
SQL Injection 		CVE-2016-6616 2024-11-21 11:56 2016-12-11 Show GitHub Exploit DB Packet Storm
267905 6.1 MEDIUM
Network 		phpmyadmin phpmyadmin XSS issues were discovered in phpMyAdmin. This affects navigation pane and database/table hiding feature (a specially-crafted database name can be used to trigger an XSS attack); the "Tracking" featu… CWE-79
Cross-site Scripting 		CVE-2016-6615 2024-11-21 11:56 2016-12-11 Show GitHub Exploit DB Packet Storm
267906 6.8 MEDIUM
Network 		phpmyadmin phpmyadmin An issue was discovered in phpMyAdmin involving the %u username replacement functionality of the SaveDir and UploadDir features. When the username substitution is configured, a specially-crafted user… CWE-22
Path Traversal 		CVE-2016-6614 2024-11-21 11:56 2016-12-11 Show GitHub Exploit DB Packet Storm
267907 5.3 MEDIUM
Network 		phpmyadmin phpmyadmin An issue was discovered in phpMyAdmin. A user can specially craft a symlink on disk, to a file which phpMyAdmin is permitted to read but the user is not, which phpMyAdmin will then expose to the user… CWE-200
Information Exposure 		CVE-2016-6613 2024-11-21 11:56 2016-12-11 Show GitHub Exploit DB Packet Storm
267908 6.5 MEDIUM
Network 		phpmyadmin phpmyadmin An issue was discovered in phpMyAdmin. A user can exploit the LOAD LOCAL INFILE functionality to expose files on the server to the database system. All 4.6.x versions (prior to 4.6.4), 4.4.x versions… CWE-200
Information Exposure 		CVE-2016-6612 2024-11-21 11:56 2016-12-11 Show GitHub Exploit DB Packet Storm
267909 8.1 HIGH
Network 		phpmyadmin phpmyadmin An issue was discovered in phpMyAdmin. A specially crafted database and/or table name can be used to trigger an SQL injection attack through the export functionality. All 4.6.x versions (prior to 4.6… CWE-89
SQL Injection 		CVE-2016-6611 2024-11-21 11:56 2016-12-11 Show GitHub Exploit DB Packet Storm
267910 4.3 MEDIUM
Network 		phpmyadmin phpmyadmin A full path disclosure vulnerability was discovered in phpMyAdmin where a user can trigger a particular error in the export mechanism to discover the full path of phpMyAdmin on the disk. All 4.6.x ve… CWE-200
Information Exposure 		CVE-2016-6610 2024-11-21 11:56 2016-12-11 Show GitHub Exploit DB Packet Storm